Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: wwW19ovU/gf4FB/q7y4Luznga3dRHNGjjUiVUctGfaw=
Subject key identifier: 7D:6C:27:9E:0E:DF:54:AB:BD:6C:23:DF:DE:79:25:D9:F8:43:05:1A
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019874BDDF228E4E9507FA26E8069AFB66A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0E12
Signing time: Mon 04 Aug 2025 11:00:56 +0000
Manifest this update: Mon 04 Aug 2025 11:00:56 +0000
Manifest next update: Tue 05 Aug 2025 11:00:56 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: eaDQFRITBy2vXcpmNnbncIoDTEdOrErm2yKio7mv/2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:bd:df:22:8e:4e:95:07:fa:26:e8:06:9a:fb:66:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Aug 4 11:00:56 2025 GMT
Not After : Aug 5 11:00:56 2025 GMT
Subject: CN=7d6c279e0edf54abbd6c23dfde7925d9f843051a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:25:0f:12:3e:be:71:a1:3c:2c:88:ef:a8:8d:
d6:4a:8a:65:8e:40:e6:0c:06:d0:3c:f9:e6:20:df:
a7:cc:fd:bd:e3:86:b1:b1:aa:ac:42:2d:40:a6:56:
5f:38:b3:3d:54:83:90:2f:a6:11:f4:5e:43:a1:b2:
fd:02:41:28:4c:6f:41:cc:43:87:2c:25:56:32:bc:
bb:0b:34:89:e0:9f:72:35:05:6a:51:0d:e3:a0:7e:
05:7f:a2:e1:fa:bb:fd:ca:39:d0:6c:72:8a:4a:47:
46:39:b0:f2:14:7b:70:2b:16:45:ab:9f:f7:e2:c6:
35:a3:4f:79:d0:b4:a6:bb:5d:82:80:13:b2:09:8b:
75:a8:b8:77:db:0f:0f:73:cc:fe:a0:cd:59:00:1e:
74:fe:a7:46:67:05:96:f7:58:c2:a4:a9:a6:d8:9f:
f9:44:45:29:64:2d:13:00:f4:45:34:e4:9a:03:20:
ba:37:c9:b3:a5:06:9e:46:69:71:f4:9c:14:5b:e7:
75:9d:82:db:e7:d0:fb:30:bd:09:80:e0:af:ae:0b:
35:af:3c:e0:43:4b:47:60:67:5a:15:a4:56:a7:c9:
7f:75:92:e2:86:db:fd:9f:bd:2e:01:a9:bf:bd:78:
d3:37:94:67:ed:9f:09:ab:f6:36:f0:e4:fc:d4:7a:
7f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:6C:27:9E:0E:DF:54:AB:BD:6C:23:DF:DE:79:25:D9:F8:43:05:1A
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:89:11:c2:3d:dc:3c:12:7d:9d:a9:15:21:97:db:27:61:ff:
8d:a0:8e:be:69:af:7b:df:40:34:77:5d:f9:d2:ee:19:fb:b4:
26:4c:e6:0d:0e:ac:ee:28:05:db:a3:9e:da:52:f9:ad:9e:86:
9f:04:fc:78:4e:7d:4e:19:b3:b0:e4:71:9c:55:e4:69:5b:b6:
40:80:73:59:39:69:55:71:55:5b:b7:f4:a0:e5:ff:0b:f3:07:
f0:53:7a:f7:69:d6:95:17:c1:19:6e:ab:47:59:73:21:fd:0a:
87:4f:69:24:16:0c:b7:2e:a2:28:8e:cf:92:de:6c:cf:4b:cb:
b9:50:d3:14:3f:76:57:cd:26:4f:21:5b:25:a3:bd:a7:16:13:
0a:05:bc:32:47:9e:6f:ab:3a:22:71:cd:82:d2:9c:0b:9c:1b:
fe:b5:c4:88:2d:4e:8e:ed:ef:e7:5e:17:a8:82:25:1c:88:5e:
ed:7f:56:07:6d:4d:5d:6b:c6:c0:9b:06:23:fe:ed:ff:6d:c5:
e9:50:c1:fb:c1:6a:71:4e:5d:2a:55:1f:e2:64:96:54:11:dc:
61:40:83:0b:f2:4c:4a:c2:d4:33:af:96:62:e9:fb:b8:e1:40:
02:98:7d:1f:ee:df:73:3b:26:29:00:90:a6:74:e7:7f:7a:6c:
9e:e2:5d:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0vd8ijk6VB/om6Aaa+2agMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjUwODA0MTEwMDU2WhcNMjUwODA1MTEwMDU2WjAzMTEwLwYDVQQD
Eyg3ZDZjMjc5ZTBlZGY1NGFiYmQ2YzIzZGZkZTc5MjVkOWY4NDMwNTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyUPEj6+caE8LIjvqI3WSopljkDm
DAbQPPnmIN+nzP2944axsaqsQi1AplZfOLM9VIOQL6YR9F5DobL9AkEoTG9BzEOH
LCVWMry7CzSJ4J9yNQVqUQ3joH4Ff6Lh+rv9yjnQbHKKSkdGObDyFHtwKxZFq5/3
4sY1o0950LSmu12CgBOyCYt1qLh32w8Pc8z+oM1ZAB50/qdGZwWW91jCpKmm2J/5
REUpZC0TAPRFNOSaAyC6N8mzpQaeRmlx9JwUW+d1nYLb59D7ML0JgOCvrgs1rzzg
Q0tHYGdaFaRWp8l/dZLihtv9n70uAam/vXjTN5Rn7Z8Jq/Y28OT81Hp/vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1sJ54O31SrvWwj3955Jdn4QwUaMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt4kRwj3c
PBJ9nakVIZfbJ2H/jaCOvmmve99ANHdd+dLuGfu0JkzmDQ6s7igF26Oe2lL5rZ6G
nwT8eE59ThmzsORxnFXkaVu2QIBzWTlpVXFVW7f0oOX/C/MH8FN692nWlRfBGW6r
R1lzIf0Kh09pJBYMty6iKI7Pkt5sz0vLuVDTFD92V80mTyFbJaO9pxYTCgW8Mkee
b6s6InHNgtKcC5wb/rXEiC1Oju3v514XqIIlHIhe7X9WB21NXWvGwJsGI/7t/23F
6VDB+8FqcU5dKlUf4mSWVBHcYUCDC/JMSsLUM6+WYun7uOFAAph9H+7fczsmKQCQ
pnTnf3psnuJdTw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:12:07 2025 by rpki-client